MyWorkDrive Team

Version 7 Preview Webinar Recording Now Available

/in /by

We are excited to announce that the webinar of MyWorkDrive Server 7.0, which is soon to be released to preview, is now available for viewing. Version 7 adds many new features and enhancements including Azure AD(Entra) native authentication and Azure file shares over API support.

In the webinar, we demonstrate the use cases for MyWorkDrive including the new features and enhancements in MyWorkDrive version 7.0.

Azure AD/Entra ID Native Authentication

Starting with version 7.0, we are adding a new option to authenticate using Azure AD/Entra ID which will no longer require setting up SAML or integrating with Active Directory. SMB and Azure file storage will utilize Azure AD/Entra ID users and groups assigned to shares natively when determining user access.

Azure File Shares API Access

Currently, in MyWorkDrive 6.x, Azure File Shares can only be accessed through SMB and Active Directory. In version 7 we are adding the ability to connect to Azure File Shares through Azure APIs and Azure AD/Entra. Providing Azure File Share access over API greatly simplifies setup reducing complexity and ongoing costs as Active Directory will no longer be required on Azure File Shares. In addition, Azure File Shares over API greatly improves performance with lower-tier Azure storage.

Azure Blob Storage API Access

In version 7 we are adding the ability to connect to Azure Blob Storage through Azure APIs and Azure AD/Entra. Azure Blob Storage supports NTFS-style permissioning at the file and folder level using Data Lake Gen2. Our goal will be to support Data Lake/Azure AD fine-grained permissions through our Azure Blob Storage API integration.

Register to view the webinar recording:

Complete the registration form below to view the video instantly:

  • This field is for validation purposes and should be left unchanged.

 

Kyle Lachmann

What is Private Cloud Storage?

/in /by

graphical explanation of private cloud with 3 parts

What is Private Cloud Storage?

A private cloud refers to a dedicated cloud computing environment exclusive to a single organization. All underlying compute resources, such as CPU and storage, are provisioned on demand through a self-service portal, and all resources remain under the control of the organization. Also known as an internal or corporate cloud, a private cloud provides a higher level of control and security compared to public or hybrid cloud solutions.

What Are Public Clouds and Hybrid Clouds?

Public Cloud:

Managed by a third-party provider, offering scalability and automation. It is cost-effective and provides a broad range of services to a global user base. The purchase and upkeep of physical data centers and servers are not required.

For instance, a startup might use AWS to host its web applications and databases. By doing so, the startup can take advantage of the scalability and flexibility offered by AWS, only paying for the resources it consumes on a pay-as-you-go basis. The public cloud model allows businesses to access a vast array of services and resources without the burden of managing and maintaining the underlying infrastructure, making it an attractive option for companies of all sizes. Other examples of public cloud providers include Microsoft Azure, Google Cloud Platform, and IBM Cloud.

Hybrid Cloud:

Integrates both public and private clouds, allowing seamless data and application migration between environments for enhanced flexibility and management. In this case, a private physical infrastructure may be utilized with public cloud resources handling tasks that require less security or more computing power.

For example, a company maintains sensitive customer data and critical business applications on a private cloud hosted in its on-premises data center. Simultaneously, the company uses a public cloud service, such as Amazon Web Services (AWS) or Microsoft Azure, to handle additional computing resources for non-sensitive workloads or to accommodate spikes in demand.

A private cloud storage solution might host the customer database and financial applications to ensure strict control and compliance with regulatory requirements. Meanwhile, the public cloud could be utilized to deploy web applications, conduct data analytics, or manage less sensitive information. The hybrid cloud architecture allows the organization to balance the need for security and compliance with the flexibility and scalability offered by the public cloud.

Origin of the Term Private Cloud:

The term “private cloud” or “private cloud storage” originated in the context of the evolution of cloud computing. Before the advent of cloud services like Amazon Web Services (AWS) or Microsoft Azure, organizations traditionally owned, purchased, and maintained their own hardware, including servers, storage devices, and networking equipment. This infrastructure was typically housed in on-premises data centers or co-location facilities to support the organization’s IT operations.

When the concept of cloud computing was introduced, it allowed users to access computing resources on-demand over the internet, some organizations sought to replicate this cloud model within their internal infrastructure. They aimed to provide similar benefits, such as flexibility and resource scaling, but within the confines of their own data centers.

To distinguish between these internally managed cloud environments and third-party public cloud services, the term “private cloud” was introduced. The “private” designation emphasizes the dedicated and isolated nature of the cloud infrastructure, which is exclusively used by a single organization rather than being shared with multiple users or entities.

Benefits of a Private Cloud Storage:

Private clouds offer a range of advantages that cater to specific organizational needs. One key benefit is enhanced security, as private clouds provide a dedicated environment where organizations have greater control over security measures. This is appealing for industries dealing with sensitive data or those subject to stringent regulatory compliance standards. The customization and control afforded by private clouds allow organizations to tailor their infrastructure to unique specifications, including the selection of hardware, software, and network configurations.

In addition to security and customization, private clouds are recognized for their compliance capabilities. Industries such as healthcare, finance, and government, which face rigorous regulatory standards, often find private clouds to be a suitable solution. The predictability of performance in a private cloud, owing to the lack of resource sharing with other users, is crucial for mission-critical workloads. The scalability of private clouds provides flexibility in resource allocation, enabling organizations to efficiently adapt to varying workloads while maintaining optimal performance.

Private Cloud Architecture:

Private cloud architecture shares similarities with public cloud setups and involves technologies such as virtualization, management software, and automation. Virtualization abstracts IT resources from physical hardware, management software ensures centralized control, and automation speeds up tedious tasks, making infrastructure management more efficient.

Private cloud storage comes in various forms:

  • On-Premises Private Cloud: Deployed in an internal data center, requiring resource purchase, maintenance, and security management.
  • Managed Private Cloud: Fully managed by a third party in an external data center, offering convenience and support.
  • Virtual Private Cloud: Deployed within a public cloud infrastructure, combining the convenience of public cloud resources with additional control and security.

MyWorkDrive and Private Cloud Storage:

MyWorkDrive is the leading choice when implementing private cloud storage.

MyWorkDrive outshines competitors like Egnyte and ShareFile. Unlike Egnyte, MyWorkDrive seamlessly integrates into existing Windows File Share infrastructure, OneDrive, or SharePoint, offering a cost-effective alternative with secure remote file access and no need for data migration.

Using MyWorkDrive to implement private cloud storage, with files remaining in place, can be significantly more cost-effective than Egnyte.

MyWorkDrive uniquely enables remote office document editing with native Office 365 online and Office Mobile Apps on local file shares, avoiding the need for cloud syncing before editing as is the case with ShareFile.

Its reduced administration overhead, better Web Browser Client, and robust security measures, including SHA256 Encryption, make MyWorkDrive the preferred choice for organizations seeking a secure, collaborative, and user-friendly private cloud storage experience.

Scott Miller

Entra ID Licensing Features and MFA Options for MyWorkDrive customers

/in /by

This article summarizes Entra ID subscription and MFA options for MyWorkDrive customers.

Entra ID License Options

A summary of Entra ID (Azure AD) subscription options which may be relevant to MyWorkDrive customers

Summarized From
https://www.microsoft.com/en-us/security/business/microsoft-entra-pricing

Free

Included with Microsoft cloud subscriptions such as Microsoft Azure, Microsoft 365, and others.

Features:
Authentication, single sign-on and application access
Multifactor authentication and conditional access

The Free license would provide the minimum features required to use MyWorkDrive. You can deploy Entra ID Login for MyWorkDrive and use MFA to protect your user accounts.

P1 License

Microsoft Entra ID P1 (formerly Azure Active Directory P1) is available as a standalone or included with Microsoft 365 E3 for enterprise customers and Microsoft 365 Business Premium for small to medium businesses.

P1 includes the same features as Free, with some additional sub-features

Authentication, single sign-on and application access
also includes

  • Group assignment to applications (makes assigning users to applications easier, if you are not selecting the “assign all” option)
  • Application proxy for on-premises, header-based, and integrated Windows authentication. (Read about deploying App Proxy here)

Multifactor authentication and conditional access
also includes

P2 License

Microsoft Entra ID P2 (formerly Azure Active Directory P2) is available as a standalone or included with Microsoft 365 E5 for enterprise customers.

P1 and P2 Entra ID licenses enable additional features and allow additional flexibility for MyWorkDrive customers users.

P2 offers no additional features over P1 which are commonly used by MyWorkDrive customers.

 

MFA options with Entra ID Licenses

MFA Options MyWorkDrive customers may choose to deploy for their users.

MyWorkDrive strongly encourages the use of Multifactor Authentication for all user accounts.

Summarized from
https://learn.microsoft.com/en-us/entra/identity/authentication/concept-mfa-licensing

Free

You can use security defaults to prompt users for multifactor authentication as needed but you don’t have granular control of enabled users or scenarios, but it does provide that additional security step.
Even when security defaults aren’t used to enable multifactor authentication for everyone, users assigned the Microsoft Entra Global Administrator role can be configured to use multifactor authentication. This feature of the free tier makes sure the critical administrator accounts are protected by multifactor authentication.
https://learn.microsoft.com/en-us/entra/fundamentals/security-defaults

Microsoft 365 Plans

Microsoft Entra multifactor authentication can be enabled for all users using security defaults. Management of Microsoft Entra multifactor authentication is through the Microsoft 365 portal.
https://learn.microsoft.com/en-us/entra/fundamentals/security-defaults

P1, P2 Licenses

You can use Microsoft Entra Conditional Access to prompt users for multifactor authentication during certain scenarios or events to fit your business requirements.
https://learn.microsoft.com/en-us/entra/identity/conditional-access/howto-conditional-access-policy-all-users-mfa

The free and Microsoft plans provide sufficient protection, but P1 and P2 licenses offer greater flexibility of options via Conditional Access.

MyWorkDrive Team

MyWorkDrive now available in the Rippling Store

/in /by

We’re excited to announce that MyWorkDrive is now available on the Rippling App Shop. Rippling is a leading HR management platform that makes it easy to manage your employees’ apps and workflows.

With Rippling and MyWorkDrive, you can provide your team with secure access to important files without complex VPNs or data migration. This integration creates a streamlined experience for your business.

Rippling offers a comprehensive solution to manage HR and IT, including over 700 app integrations. The activity stream gives you real-time visibility into employee app usage.

MyWorkDrive enables remote access to your files wherever they live. Together with Rippling, we can help you simplify employee onboarding, organize HR documents, and keep your workforce connected.

Check out MyWorkDrive today on the Rippling App Shop or in our Rippling SAML support article to experience the benefits of our integrated platforms. We believe this partnership will create more efficient workflows and an improved experience for your business and employees.

MyWorkDrive Team

October MyWorkDrive Newsletter 2023

/in , /by

Software Development Risks

In today’s interconnected world, the software we use plays a pivotal role in our lives, from personal communication to business operations. Concerns over the security and privacy of our digital lives are increasing, especially when using software developed and supported in countries whose governments have divergent political motives.

Data privacy is a fundamental right that should be upheld across the globe. However, many governments do not adhere to the same level of data protection as those with a stronger tradition of human rights-based regulatory, legal, and social norms. This is partly due to the absence of robust data protection regulations, oversight, and freedom of expression found in countries like the United States and the European Union. The absence of stringent data privacy laws in some countries can leave users with little recourse when their data is mishandled or exploited. Breaches of data privacy can lead to severe consequences, including identity theft, cyber espionage, and loss of personal information.

One of the central issues contributing to the security risks associated with software from nefarious countries is the stark contrast in regulatory frameworks. Countries like the United States and the European Union enforce the strictest data protection laws in the world, such as the General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPPA), the Gramm-Leach-Bliley Act (GLBA), the California Consumer Privacy Act (CCPA), and the Privacy Act of 1974, which demand companies use, protect, and collect data, as well as report data breaches in a highly regulated and responsible way amongst many other things.

On the other hand, other counties might maintain a façade of data privacy and security regulations, while at the same time allowing for greater government involvement and less oversight over data handling practices. This institutional disparity creates an environment where governments may more easily exploit or access user data without their informed consent, or create cases in which firms may be compelled to promptly hand over user data.

The use of software from countries with ambiguous intentions presents substantial security risks. Government control, the looming threat of backdoors, weak data privacy regulations, and regulatory differences all combine to heighten these risks. Users and organizations must approach their digital lives with heightened vigilance and prioritize data security and privacy when vetting software purchases. As the debate on balancing security and access continues globally, users must remain informed and cautious in their choice of software, safeguarding their digital assets.

This is why when choosing a software vendor one must consistently scrutinize its methods, practices, fidelity, and country of origin. MyWorkDrive not only leads the industry in file-share remote access technology but also adheres to the strictest sets of standards and ethics when it comes to data privacy. And of course, all MyWorkDrive assets, employees, and development has always been and will always be located in the United States and the European Union.

FAQ Spotlight

What is Vendor Lock-in and How Does it Relate to File Share Access?

Vendor lock-in refers to a situation where a customer becomes heavily dependent on a particular vendor’s products or services, making it difficult to switch to an alternative vendor without significant cost or disruption. In the context of accessing file shares, vendor lock-in can occur when an organization relies on a file share access platform or service that uses proprietary formats or systems. This dependence can make it challenging to migrate data and processes to a different file-sharing solution if the need arises. It’s important to be aware of vendor lock-in when choosing file-sharing tools to maintain flexibility and avoid potential limitations down the road.

MyWorkDrive’s platform-agnostic approach, avoidance of proprietary formats, and data ownership on your servers prevent vendor lock-in. This empowers organizations to maintain control over their data and infrastructure, eliminating the need to migrate files to cloud storage providers with vendor lock-in. Our file server sharing software allows enterprises to securely access cloud files without compromising security and with easy deployment.

Click here to learn more about vendor lock-in and the associated costs it brings.